CVE-2023-43352

Published
View on NVD ↗
CVSS v3
7.8
HIGH
CVSS v2
N/A
Affected
1
PROJECT

Description

An issue in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted payload to the Content Manager Menu component.

sromanhu/CVE-2023-43352-CMSmadesimple-SSTI--Content
sromanhu/CVE-2023-43352-CMSmadesimple-SSTI--Content
SSTI vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to use native template syntax to inject a malicious payload into a template, which is then executed server-side
GitHubGitHub